Claims 

1 . A method for preventing Ethernet from being attacked, comprising: 
establishing and storing a fixed map between a port and a hardware address of a 

terminal device, then forwarding a data packet according to the fixed map after an 
Ethernet communication device detects a new connection between the port and the 
terminal device and receives a data packet from the terminal device; and 

deleting the fixed map after the Ethernet communication device detects a 
disconnection between the port and the terminal device. 

2. The method of claim 1, further comprising: after receiving the data packet 
from the terminal device, judging whether the fixed map has been established; if so, 
directly forwarding the data packet; otherwise, establishing and storing the fixed map 
between the port and the hardware address of the terminal device. 

3. The method of claim 2, wherein the step of directly forwarding the data packet 
comprises the step of judging whether the hardware address carried in the data packet 
is consistent with the hardware address corresponding to the port in said fixed map; if 
so, forwarding the data packet according to a conventional forwarding processing; 
otherwise, discarding the data packet. 

4. The method of claim 3, further comprising: after discarding the data packet, 
recording the judgment result in a log and informing a network administrator. 

5. The method of claim 1, wherein said hardware address is a Media Access 
Control (MAC) address. 

6. The method of claim 1, wherein detecting the new connection or the 
disconnection between the terminal device and the port is implemented by detecting 
physical signals in the port. 

7. The method of claim 1, wherein said Ethernet communication device is a 
two-layer switch, a three-layer switch, a firewall device or an Ethernet bridge. 

8. The method of claim 1, wherein said terminal device is a personal computer, a 
server or an IP telephone set. 

9. The method of claim 1, wherein said fixed map is stored in a hardware address 
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table of the Ethernet communication device. 
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